3 matches found
CodiMD 安全漏洞
CodiMD is a real-time collaborative note-taking application open-sourced by HackMD. A security vulnerability exists in CodiMD 2.5.4 and earlier versions, which stems from a CSP-based XSS protection mechanism that can be bypassed in cross-domain file storage scenarios, potentially leading to...
CVE-2024-40626 Stored Cross-site Scripting (XSS) vulnerability in Outline editor
Outline is an open source, collaborative document editor. A type confusion issue was found in ProseMirror’s rendering process that leads to a Stored Cross-Site Scripting XSS vulnerability in Outline. An authenticated user can create a document containing a malicious JavaScript payload. When other...
xdLocalStorage Input Validation Error Vulnerability
xdLocalStorage is a lightweight JavaScript library that supports cross-domain data storage . An input validation error vulnerability exists in xdLocalStorage. An attacker can exploit this vulnerability to obtain sensitive information...